$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa File: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (raw, json) Hash identifier: PzpxJ1wAU4JOOM9Ua601jWEJ3SwKhjZUT/0wY4O6QMY= Subject key identifier: A1:C9:5C:00:99:6F:67:C1:5F:F0:08:A0:1A:FF:DC:69:AA:45:BA:86 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 352C Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa Signing time: Wed 31 Jul 2024 12:38:14 +0000 ROA not before: Wed 31 Jul 2024 12:38:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45814 IP address blocks: 116.90.106.0/24 maxlen: 24 116.90.107.0/24 maxlen: 24 116.90.108.0/24 maxlen: 24 116.90.109.0/24 maxlen: 24 116.90.110.0/24 maxlen: 24 202.69.33.0/24 maxlen: 24 202.69.36.0/24 maxlen: 24 202.69.42.0/24 maxlen: 24 202.69.54.0/24 maxlen: 24 202.69.55.0/24 maxlen: 24 202.142.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Jul 31 12:38:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66aa3036-3e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3f:aa:c7:f8:64:8e:b7:51:22:cd:fd:c5:3e: 24:d9:f7:14:eb:b5:a9:9b:53:8e:42:4c:c4:a0:08: 11:95:8e:6d:88:9b:c9:17:ae:00:e7:f7:5a:c3:0a: 14:b6:c3:1d:2f:e1:1a:f2:c2:b2:b7:42:c8:a4:14: 1e:66:bc:96:dd:f8:c3:a9:06:39:3b:17:ac:e9:ac: d3:06:e5:d4:06:a3:e6:b6:50:bd:c3:c3:38:1f:5a: c0:f3:f9:9f:72:54:54:26:4c:e7:ec:13:91:58:fa: f3:f7:f7:da:f0:ba:2c:73:cf:20:90:8c:61:3e:57: bf:9e:41:75:6f:03:22:31:8a:72:a2:2b:c7:df:f4: 9c:0a:af:bd:41:e8:1a:d4:f2:ec:b2:d8:35:6e:a5: 5a:84:31:35:e3:61:ff:12:6c:ec:30:75:09:dd:50: 0f:6d:c3:88:79:fa:08:90:58:20:0d:54:bb:18:7a: d5:ea:7a:87:3a:54:16:c4:2e:d9:39:22:9b:47:e1: a8:f6:64:c2:ff:f1:df:fc:eb:2d:f3:3d:8e:24:33: cc:7c:c1:ac:30:60:31:ad:ac:97:ca:8c:0e:6c:f1: e4:33:56:98:7f:51:07:ab:88:0e:ac:32:34:ee:96: 21:2d:8d:8f:1d:7b:b5:5f:60:c9:10:8a:2b:55:4d: 4f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C9:5C:00:99:6F:67:C1:5F:F0:08:A0:1A:FF:DC:69:AA:45:BA:86 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.106.0-116.90.110.255 202.69.33.0/24 202.69.36.0/24 202.69.42.0/24 202.69.54.0/23 202.142.152.0/24 Signature Algorithm: sha256WithRSAEncryption 12:b0:3f:16:e1:cb:4c:87:23:40:a6:15:4a:1e:21:40:75:74: cc:6d:7c:3e:33:37:80:86:9a:d2:64:75:42:77:fc:e0:6c:52: a3:85:fa:e8:11:f1:c0:97:71:a6:e9:87:cf:b2:f9:1a:cb:8e: e3:aa:74:e2:73:ad:53:fc:25:09:a7:ce:15:16:6d:43:89:37: bd:13:f2:f8:3d:35:bd:20:4c:df:a1:5e:69:d8:95:1a:06:5f: 20:f0:fb:8d:90:7e:b9:39:16:35:8c:59:65:b2:c6:a4:6d:41: 3a:96:e8:b9:87:e1:ff:58:c3:e4:27:99:fc:5d:3f:58:d0:15: 24:ed:a9:25:b7:05:fb:73:17:c4:2e:58:5d:55:f6:f4:52:71: bb:24:f2:5f:e7:f4:d2:de:2b:35:f2:81:a2:b9:30:6d:c9:fc: fe:35:01:7d:86:e1:88:58:2e:08:fc:13:cc:1c:49:94:07:39: f8:a5:b8:73:fe:07:b1:4a:b9:f5:89:4d:88:24:86:98:ac:3d: 75:df:af:ac:7a:6a:4a:dd:8c:5a:ac:78:ff:7d:a8:3c:e4:b5: b1:ba:36:d2:4b:0c:51:c0:25:88:b0:57:1b:86:0e:eb:95:06: 92:24:19:8a:1e:04:8b:7c:4b:ee:a5:c7:d5:71:94:5d:21:01: b5:a8:eb:32 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwNzMxMTIzODE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhMzAzNi0zZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvj+qx/hkjrdRIs39xT4k2fcU67Wpm1OOQkzEoAgRlY5tiJvJF64A5/dawwoU tsMdL+Ea8sKyt0LIpBQeZryW3fjDqQY5Oxes6azTBuXUBqPmtlC9w8M4H1rA8/mf clRUJkzn7BORWPrz9/fa8Losc88gkIxhPle/nkF1bwMiMYpyoivH3/ScCq+9Qega 1PLsstg1bqVahDE142H/EmzsMHUJ3VAPbcOIefoIkFggDVS7GHrV6nqHOlQWxC7Z OSKbR+Go9mTC//Hf/Ost8z2OJDPMfMGsMGAxrayXyowObPHkM1aYf1EHq4gOrDI0 7pYhLY2PHXu1X2DJEIorVU1PxwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFKHJXACZ b2fBX/AIoBr/3GmqRbqGMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNzdEOTZENEE0 RjM0MTFFRkJBMEEyNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwwDAMEAXRaagMEAHRabgMEAMpFIQMEAMpFJAMEAMpFKgMEAcpF NgMEAMqOmDANBgkqhkiG9w0BAQsFAAOCAQEAErA/FuHLTIcjQKYVSh4hQHV0zG18 PjM3gIaa0mR1Qnf84GxSo4X66BHxwJdxpumHz7L5GsuO46p04nOtU/wlCafOFRZt Q4k3vRPy+D01vSBM36FeadiVGgZfIPD7jZB+uTkWNYxZZbLGpG1BOpbouYfh/1jD 5CeZ/F0/WNAVJO2pJbcF+3MXxC5YXVX29FJxuyTyX+f00t4rNfKBorkwbcn8/jUB fYbhiFguCPwTzBxJlAc5+KW4c/4HsUq59YlNiCSGmKw9dd+vrHpqSt2MWqx4/32o POS1sbo20ksMUcAliLBXG4YO65UGkiQZih4Ei3xL7qXH1XGUXSEBtajrMg== -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:43 2024 by rpki-client on console-fra.rpki-client.org